npm - @proof-layer/sdk - Versions diffs - 1.0.0 - Mend

@proof-layer/sdk 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.d.mts ADDED Viewed

@@ -0,0 +1,112 @@
+type Verdict = "EXECUTE" | "SHADOW" | "REVIEW" | "BLOCK";
+type ActionType = "READ_RESOURCE" | "DELETE_RESOURCE" | "TRANSACT_PAYMENT" | "EXPORT_DATA" | "MODIFY_ACCESS" | "WRITE_RESOURCE";
+interface EvaluateOptions {
+    actionType: ActionType;
+    resourceId: string;
+    agentId: string;
+    parameters?: Record<string, unknown>;
+    idempotencyKey?: string;
+    requestedAt?: string;
+    timeoutPolicy?: "fail_closed" | "fail_open";
+}
+interface EvaluateResult {
+    verdict: Verdict;
+    reason: string;
+    receiptId: string;
+    receipt: Receipt;
+    governance_mode?: string;
+}
+interface Receipt {
+    receiptId: string;
+    tenantId: string;
+    eventType: string;
+    agentId: string;
+    verdict: string;
+    policyPackHash: string;
+    payloadHash: string;
+    signature?: {
+        algorithm: string;
+        keyId: string;
+        value: string;
+    };
+    seq: number;
+    canonicalPayload?: Record<string, unknown>;
+    createdAt: string;
+}
+interface ListReceiptsOptions {
+    limit?: number;
+    offset?: number;
+}
+interface VerifyChainResult {
+    valid: boolean;
+    receiptCount: number;
+    merkleRoot: string;
+    receipts: {
+        receiptId: string;
+        payloadHash: string;
+        signatureValid: boolean;
+    }[];
+}
+interface ProofLayerClientOptions {
+    /** Your Proof Layer API key (vdk_...) */
+    apiKey: string;
+    /** Override the base URL — useful for self-hosted deployments. Defaults to https://prooflayer.world999labs.com */
+    baseUrl?: string;
+    /** Maximum number of retry attempts on transient errors (5xx, network). Default: 3 */
+    maxRetries?: number;
+    /** Tenant ID — required for multi-tenant operations, optional for single-tenant. */
+    tenantId?: string;
+}
+declare class ProofLayerClient {
+    private readonly apiKey;
+    private readonly baseUrl;
+    private readonly maxRetries;
+    private readonly tenantId;
+    constructor(options: ProofLayerClientOptions);
+    private authHeaders;
+    /**
+     * Internal fetch wrapper with exponential-backoff retry on transient errors.
+     */
+    private fetchWithRetry;
+    private request;
+    /**
+     * Submit an action proposal for governance evaluation.
+     * The Guardian returns a verdict (EXECUTE | SHADOW | REVIEW | BLOCK).
+     */
+    evaluate(options: EvaluateOptions): Promise<EvaluateResult>;
+    /**
+     * Retrieve a single receipt by ID.
+     */
+    getReceipt(receiptId: string): Promise<Receipt>;
+    /**
+     * List receipts for the authenticated tenant.
+     */
+    listReceipts(options?: ListReceiptsOptions): Promise<{
+        receipts: Receipt[];
+        count: number;
+    }>;
+    /**
+     * Verify the cryptographic integrity of a receipt.
+     */
+    verifyReceipt(receiptId: string): Promise<{
+        valid: boolean;
+        receipt: Receipt;
+    }>;
+    /**
+     * Verify the full audit chain (Merkle root integrity) for the tenant.
+     */
+    verifyChain(): Promise<VerifyChainResult>;
+    /**
+     * Retrieve usage statistics for the current billing period.
+     */
+    getUsage(): Promise<{
+        tenant_id: string;
+        tier: string;
+        receipts_this_month: number;
+        receipts_included: number;
+        percent_used: number;
+    }>;
+}
+export { type ActionType, type EvaluateOptions, type EvaluateResult, type ListReceiptsOptions, ProofLayerClient, type ProofLayerClientOptions, type Receipt, type Verdict, type VerifyChainResult };

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,112 @@
+type Verdict = "EXECUTE" | "SHADOW" | "REVIEW" | "BLOCK";
+type ActionType = "READ_RESOURCE" | "DELETE_RESOURCE" | "TRANSACT_PAYMENT" | "EXPORT_DATA" | "MODIFY_ACCESS" | "WRITE_RESOURCE";
+interface EvaluateOptions {
+    actionType: ActionType;
+    resourceId: string;
+    agentId: string;
+    parameters?: Record<string, unknown>;
+    idempotencyKey?: string;
+    requestedAt?: string;
+    timeoutPolicy?: "fail_closed" | "fail_open";
+}
+interface EvaluateResult {
+    verdict: Verdict;
+    reason: string;
+    receiptId: string;
+    receipt: Receipt;
+    governance_mode?: string;
+}
+interface Receipt {
+    receiptId: string;
+    tenantId: string;
+    eventType: string;
+    agentId: string;
+    verdict: string;
+    policyPackHash: string;
+    payloadHash: string;
+    signature?: {
+        algorithm: string;
+        keyId: string;
+        value: string;
+    };
+    seq: number;
+    canonicalPayload?: Record<string, unknown>;
+    createdAt: string;
+}
+interface ListReceiptsOptions {
+    limit?: number;
+    offset?: number;
+}
+interface VerifyChainResult {
+    valid: boolean;
+    receiptCount: number;
+    merkleRoot: string;
+    receipts: {
+        receiptId: string;
+        payloadHash: string;
+        signatureValid: boolean;
+    }[];
+}
+interface ProofLayerClientOptions {
+    /** Your Proof Layer API key (vdk_...) */
+    apiKey: string;
+    /** Override the base URL — useful for self-hosted deployments. Defaults to https://prooflayer.world999labs.com */
+    baseUrl?: string;
+    /** Maximum number of retry attempts on transient errors (5xx, network). Default: 3 */
+    maxRetries?: number;
+    /** Tenant ID — required for multi-tenant operations, optional for single-tenant. */
+    tenantId?: string;
+}
+declare class ProofLayerClient {
+    private readonly apiKey;
+    private readonly baseUrl;
+    private readonly maxRetries;
+    private readonly tenantId;
+    constructor(options: ProofLayerClientOptions);
+    private authHeaders;
+    /**
+     * Internal fetch wrapper with exponential-backoff retry on transient errors.
+     */
+    private fetchWithRetry;
+    private request;
+    /**
+     * Submit an action proposal for governance evaluation.
+     * The Guardian returns a verdict (EXECUTE | SHADOW | REVIEW | BLOCK).
+     */
+    evaluate(options: EvaluateOptions): Promise<EvaluateResult>;
+    /**
+     * Retrieve a single receipt by ID.
+     */
+    getReceipt(receiptId: string): Promise<Receipt>;
+    /**
+     * List receipts for the authenticated tenant.
+     */
+    listReceipts(options?: ListReceiptsOptions): Promise<{
+        receipts: Receipt[];
+        count: number;
+    }>;
+    /**
+     * Verify the cryptographic integrity of a receipt.
+     */
+    verifyReceipt(receiptId: string): Promise<{
+        valid: boolean;
+        receipt: Receipt;
+    }>;
+    /**
+     * Verify the full audit chain (Merkle root integrity) for the tenant.
+     */
+    verifyChain(): Promise<VerifyChainResult>;
+    /**
+     * Retrieve usage statistics for the current billing period.
+     */
+    getUsage(): Promise<{
+        tenant_id: string;
+        tier: string;
+        receipts_this_month: number;
+        receipts_included: number;
+        percent_used: number;
+    }>;
+}
+export { type ActionType, type EvaluateOptions, type EvaluateResult, type ListReceiptsOptions, ProofLayerClient, type ProofLayerClientOptions, type Receipt, type Verdict, type VerifyChainResult };

package/dist/index.js ADDED Viewed

@@ -0,0 +1,163 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  ProofLayerClient: () => ProofLayerClient
+});
+module.exports = __toCommonJS(index_exports);
+// src/client.ts
+var import_crypto = require("crypto");
+var DEFAULT_BASE_URL = "https://prooflayer.world999labs.com";
+var MAX_BACKOFF_MS = 4e3;
+function backoffMs(attempt) {
+  return Math.min(250 * Math.pow(2, attempt), MAX_BACKOFF_MS);
+}
+function sleep(ms) {
+  return new Promise((resolve) => setTimeout(resolve, ms));
+}
+var ProofLayerClient = class {
+  apiKey;
+  baseUrl;
+  maxRetries;
+  tenantId;
+  constructor(options) {
+    if (!options.apiKey) throw new Error("ProofLayerClient: apiKey is required");
+    this.apiKey = options.apiKey;
+    this.baseUrl = (options.baseUrl ?? DEFAULT_BASE_URL).replace(/\/$/, "");
+    this.maxRetries = options.maxRetries ?? 3;
+    this.tenantId = options.tenantId;
+  }
+  authHeaders() {
+    return {
+      "Content-Type": "application/json",
+      "X-Api-Key": this.apiKey
+    };
+  }
+  /**
+   * Internal fetch wrapper with exponential-backoff retry on transient errors.
+   */
+  async fetchWithRetry(path, init, attempt = 0) {
+    const url = `${this.baseUrl}${path}`;
+    let lastErr;
+    for (let i = 0; i <= this.maxRetries; i++) {
+      if (i > 0) await sleep(backoffMs(i - 1));
+      try {
+        const resp = await fetch(url, init);
+        if (resp.status >= 500 && i < this.maxRetries) {
+          lastErr = new Error(`HTTP ${resp.status}`);
+          continue;
+        }
+        return resp;
+      } catch (err) {
+        lastErr = err;
+        if (i >= this.maxRetries) break;
+      }
+    }
+    throw lastErr ?? new Error("Request failed after retries");
+  }
+  async request(path, init) {
+    const resp = await this.fetchWithRetry(path, {
+      ...init,
+      headers: { ...this.authHeaders(), ...init.headers ?? {} }
+    });
+    if (!resp.ok) {
+      const body = await resp.json().catch(() => ({}));
+      const msg = body?.message ?? body?.error ?? `HTTP ${resp.status}`;
+      throw Object.assign(new Error(`Proof Layer API error: ${msg}`), {
+        status: resp.status,
+        body
+      });
+    }
+    return resp.json();
+  }
+  /**
+   * Submit an action proposal for governance evaluation.
+   * The Guardian returns a verdict (EXECUTE | SHADOW | REVIEW | BLOCK).
+   */
+  async evaluate(options) {
+    const tenantId = this.tenantId;
+    const payload = {
+      schema_version: "1.0",
+      action_type: options.actionType,
+      resource_id: options.resourceId,
+      agent_id: options.agentId,
+      parameters: options.parameters ?? {},
+      idempotency_key: options.idempotencyKey ?? (0, import_crypto.randomUUID)(),
+      requested_at: options.requestedAt ?? (/* @__PURE__ */ new Date()).toISOString(),
+      guardian_timeout_policy: options.timeoutPolicy ?? "fail_closed"
+    };
+    if (tenantId) payload.tenant_id = tenantId;
+    return this.request("/v1/evaluate", {
+      method: "POST",
+      body: JSON.stringify(payload)
+    });
+  }
+  /**
+   * Retrieve a single receipt by ID.
+   */
+  async getReceipt(receiptId) {
+    return this.request(`/v1/receipts/${encodeURIComponent(receiptId)}`, {
+      method: "GET"
+    });
+  }
+  /**
+   * List receipts for the authenticated tenant.
+   */
+  async listReceipts(options = {}) {
+    const params = new URLSearchParams();
+    if (options.limit) params.set("limit", String(options.limit));
+    if (options.offset) params.set("offset", String(options.offset));
+    const qs = params.toString() ? `?${params}` : "";
+    return this.request(`/v1/receipts${qs}`, {
+      method: "GET"
+    });
+  }
+  /**
+   * Verify the cryptographic integrity of a receipt.
+   */
+  async verifyReceipt(receiptId) {
+    return this.request("/v1/receipts/verify", {
+      method: "POST",
+      body: JSON.stringify({ receipt_id: receiptId })
+    });
+  }
+  /**
+   * Verify the full audit chain (Merkle root integrity) for the tenant.
+   */
+  async verifyChain() {
+    return this.request("/v1/receipts/verify-chain", {
+      method: "POST",
+      body: JSON.stringify({})
+    });
+  }
+  /**
+   * Retrieve usage statistics for the current billing period.
+   */
+  async getUsage() {
+    return this.request("/v1/usage", { method: "GET" });
+  }
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  ProofLayerClient
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/index.ts","../src/client.ts"],"sourcesContent":["export { ProofLayerClient } from \"./client\";\nexport type {\n ProofLayerClientOptions,\n EvaluateOptions,\n EvaluateResult,\n Receipt,\n ListReceiptsOptions,\n VerifyChainResult,\n Verdict,\n ActionType,\n} from \"./types\";\n","import { randomUUID } from \"crypto\";\nimport type {\n EvaluateOptions,\n EvaluateResult,\n Receipt,\n ListReceiptsOptions,\n VerifyChainResult,\n ProofLayerClientOptions,\n} from \"./types\";\n\nconst DEFAULT_BASE_URL = \"https://prooflayer.world999labs.com\";\nconst MAX_BACKOFF_MS = 4_000;\n\n/**\n * Exponential backoff delay, doubling per attempt, capped at MAX_BACKOFF_MS.\n * attempt 0 → 250ms, 1 → 500ms, 2 → 1000ms, 3 → 2000ms, 4+ → 4000ms.\n */\nfunction backoffMs(attempt: number): number {\n return Math.min(250 * Math.pow(2, attempt), MAX_BACKOFF_MS);\n}\n\nfunction sleep(ms: number): Promise<void> {\n return new Promise((resolve) => setTimeout(resolve, ms));\n}\n\nexport class ProofLayerClient {\n private readonly apiKey: string;\n private readonly baseUrl: string;\n private readonly maxRetries: number;\n private readonly tenantId: string | undefined;\n\n constructor(options: ProofLayerClientOptions) {\n if (!options.apiKey) throw new Error(\"ProofLayerClient: apiKey is required\");\n this.apiKey = options.apiKey;\n this.baseUrl = (options.baseUrl ?? DEFAULT_BASE_URL).replace(/\\/$/, \"\");\n this.maxRetries = options.maxRetries ?? 3;\n this.tenantId = options.tenantId;\n }\n\n private authHeaders(): Record<string, string> {\n return {\n \"Content-Type\": \"application/json\",\n \"X-Api-Key\": this.apiKey,\n };\n }\n\n /**\n * Internal fetch wrapper with exponential-backoff retry on transient errors.\n */\n private async fetchWithRetry(\n path: string,\n init: RequestInit,\n attempt = 0,\n ): Promise<Response> {\n const url = `${this.baseUrl}${path}`;\n let lastErr: unknown;\n for (let i = 0; i <= this.maxRetries; i++) {\n if (i > 0) await sleep(backoffMs(i - 1));\n try {\n const resp = await fetch(url, init);\n // Retry on 5xx server errors only\n if (resp.status >= 500 && i < this.maxRetries) {\n lastErr = new Error(`HTTP ${resp.status}`);\n continue;\n }\n return resp;\n } catch (err) {\n lastErr = err;\n if (i >= this.maxRetries) break;\n }\n }\n throw lastErr ?? new Error(\"Request failed after retries\");\n }\n\n private async request<T>(path: string, init: RequestInit): Promise<T> {\n const resp = await this.fetchWithRetry(path, {\n ...init,\n headers: { ...this.authHeaders(), ...(init.headers as Record<string, string> ?? {}) },\n });\n if (!resp.ok) {\n const body = await resp.json().catch(() => ({}));\n const msg = (body as any)?.message ?? (body as any)?.error ?? `HTTP ${resp.status}`;\n throw Object.assign(new Error(`Proof Layer API error: ${msg}`), {\n status: resp.status,\n body,\n });\n }\n return resp.json() as Promise<T>;\n }\n\n /**\n * Submit an action proposal for governance evaluation.\n * The Guardian returns a verdict (EXECUTE | SHADOW | REVIEW | BLOCK).\n */\n async evaluate(options: EvaluateOptions): Promise<EvaluateResult> {\n const tenantId = this.tenantId;\n const payload: Record<string, unknown> = {\n schema_version: \"1.0\",\n action_type: options.actionType,\n resource_id: options.resourceId,\n agent_id: options.agentId,\n parameters: options.parameters ?? {},\n idempotency_key: options.idempotencyKey ?? randomUUID(),\n requested_at: options.requestedAt ?? new Date().toISOString(),\n guardian_timeout_policy: options.timeoutPolicy ?? \"fail_closed\",\n };\n if (tenantId) payload.tenant_id = tenantId;\n return this.request<EvaluateResult>(\"/v1/evaluate\", {\n method: \"POST\",\n body: JSON.stringify(payload),\n });\n }\n\n /**\n * Retrieve a single receipt by ID.\n */\n async getReceipt(receiptId: string): Promise<Receipt> {\n return this.request<Receipt>(`/v1/receipts/${encodeURIComponent(receiptId)}`, {\n method: \"GET\",\n });\n }\n\n /**\n * List receipts for the authenticated tenant.\n */\n async listReceipts(options: ListReceiptsOptions = {}): Promise<{ receipts: Receipt[]; count: number }> {\n const params = new URLSearchParams();\n if (options.limit) params.set(\"limit\", String(options.limit));\n if (options.offset) params.set(\"offset\", String(options.offset));\n const qs = params.toString() ? `?${params}` : \"\";\n return this.request<{ receipts: Receipt[]; count: number }>(`/v1/receipts${qs}`, {\n method: \"GET\",\n });\n }\n\n /**\n * Verify the cryptographic integrity of a receipt.\n */\n async verifyReceipt(receiptId: string): Promise<{ valid: boolean; receipt: Receipt }> {\n return this.request<{ valid: boolean; receipt: Receipt }>(\"/v1/receipts/verify\", {\n method: \"POST\",\n body: JSON.stringify({ receipt_id: receiptId }),\n });\n }\n\n /**\n * Verify the full audit chain (Merkle root integrity) for the tenant.\n */\n async verifyChain(): Promise<VerifyChainResult> {\n return this.request<VerifyChainResult>(\"/v1/receipts/verify-chain\", {\n method: \"POST\",\n body: JSON.stringify({}),\n });\n }\n\n /**\n * Retrieve usage statistics for the current billing period.\n */\n async getUsage(): Promise<{\n tenant_id: string;\n tier: string;\n receipts_this_month: number;\n receipts_included: number;\n percent_used: number;\n }> {\n return this.request(\"/v1/usage\", { method: \"GET\" });\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACAA,oBAA2B;AAU3B,IAAM,mBAAmB;AACzB,IAAM,iBAAiB;AAMvB,SAAS,UAAU,SAAyB;AAC1C,SAAO,KAAK,IAAI,MAAM,KAAK,IAAI,GAAG,OAAO,GAAG,cAAc;AAC5D;AAEA,SAAS,MAAM,IAA2B;AACxC,SAAO,IAAI,QAAQ,CAAC,YAAY,WAAW,SAAS,EAAE,CAAC;AACzD;AAEO,IAAM,mBAAN,MAAuB;AAAA,EACX;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EAEjB,YAAY,SAAkC;AAC5C,QAAI,CAAC,QAAQ,OAAQ,OAAM,IAAI,MAAM,sCAAsC;AAC3E,SAAK,SAAS,QAAQ;AACtB,SAAK,WAAW,QAAQ,WAAW,kBAAkB,QAAQ,OAAO,EAAE;AACtE,SAAK,aAAa,QAAQ,cAAc;AACxC,SAAK,WAAW,QAAQ;AAAA,EAC1B;AAAA,EAEQ,cAAsC;AAC5C,WAAO;AAAA,MACL,gBAAgB;AAAA,MAChB,aAAa,KAAK;AAAA,IACpB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,eACZ,MACA,MACA,UAAU,GACS;AACnB,UAAM,MAAM,GAAG,KAAK,OAAO,GAAG,IAAI;AAClC,QAAI;AACJ,aAAS,IAAI,GAAG,KAAK,KAAK,YAAY,KAAK;AACzC,UAAI,IAAI,EAAG,OAAM,MAAM,UAAU,IAAI,CAAC,CAAC;AACvC,UAAI;AACF,cAAM,OAAO,MAAM,MAAM,KAAK,IAAI;AAElC,YAAI,KAAK,UAAU,OAAO,IAAI,KAAK,YAAY;AAC7C,oBAAU,IAAI,MAAM,QAAQ,KAAK,MAAM,EAAE;AACzC;AAAA,QACF;AACA,eAAO;AAAA,MACT,SAAS,KAAK;AACZ,kBAAU;AACV,YAAI,KAAK,KAAK,WAAY;AAAA,MAC5B;AAAA,IACF;AACA,UAAM,WAAW,IAAI,MAAM,8BAA8B;AAAA,EAC3D;AAAA,EAEA,MAAc,QAAW,MAAc,MAA+B;AACpE,UAAM,OAAO,MAAM,KAAK,eAAe,MAAM;AAAA,MAC3C,GAAG;AAAA,MACH,SAAS,EAAE,GAAG,KAAK,YAAY,GAAG,GAAI,KAAK,WAAqC,CAAC,EAAG;AAAA,IACtF,CAAC;AACD,QAAI,CAAC,KAAK,IAAI;AACZ,YAAM,OAAO,MAAM,KAAK,KAAK,EAAE,MAAM,OAAO,CAAC,EAAE;AAC/C,YAAM,MAAO,MAAc,WAAY,MAAc,SAAS,QAAQ,KAAK,MAAM;AACjF,YAAM,OAAO,OAAO,IAAI,MAAM,0BAA0B,GAAG,EAAE,GAAG;AAAA,QAC9D,QAAQ,KAAK;AAAA,QACb;AAAA,MACF,CAAC;AAAA,IACH;AACA,WAAO,KAAK,KAAK;AAAA,EACnB;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SAAS,SAAmD;AAChE,UAAM,WAAW,KAAK;AACtB,UAAM,UAAmC;AAAA,MACvC,gBAAgB;AAAA,MAChB,aAAa,QAAQ;AAAA,MACrB,aAAa,QAAQ;AAAA,MACrB,UAAU,QAAQ;AAAA,MAClB,YAAY,QAAQ,cAAc,CAAC;AAAA,MACnC,iBAAiB,QAAQ,sBAAkB,0BAAW;AAAA,MACtD,cAAc,QAAQ,gBAAe,oBAAI,KAAK,GAAE,YAAY;AAAA,MAC5D,yBAAyB,QAAQ,iBAAiB;AAAA,IACpD;AACA,QAAI,SAAU,SAAQ,YAAY;AAClC,WAAO,KAAK,QAAwB,gBAAgB;AAAA,MAClD,QAAQ;AAAA,MACR,MAAM,KAAK,UAAU,OAAO;AAAA,IAC9B,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAW,WAAqC;AACpD,WAAO,KAAK,QAAiB,gBAAgB,mBAAmB,SAAS,CAAC,IAAI;AAAA,MAC5E,QAAQ;AAAA,IACV,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,aAAa,UAA+B,CAAC,GAAoD;AACrG,UAAM,SAAS,IAAI,gBAAgB;AACnC,QAAI,QAAQ,MAAO,QAAO,IAAI,SAAS,OAAO,QAAQ,KAAK,CAAC;AAC5D,QAAI,QAAQ,OAAQ,QAAO,IAAI,UAAU,OAAO,QAAQ,MAAM,CAAC;AAC/D,UAAM,KAAK,OAAO,SAAS,IAAI,IAAI,MAAM,KAAK;AAC9C,WAAO,KAAK,QAAgD,eAAe,EAAE,IAAI;AAAA,MAC/E,QAAQ;AAAA,IACV,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,cAAc,WAAkE;AACpF,WAAO,KAAK,QAA8C,uBAAuB;AAAA,MAC/E,QAAQ;AAAA,MACR,MAAM,KAAK,UAAU,EAAE,YAAY,UAAU,CAAC;AAAA,IAChD,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,cAA0C;AAC9C,WAAO,KAAK,QAA2B,6BAA6B;AAAA,MAClE,QAAQ;AAAA,MACR,MAAM,KAAK,UAAU,CAAC,CAAC;AAAA,IACzB,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAMH;AACD,WAAO,KAAK,QAAQ,aAAa,EAAE,QAAQ,MAAM,CAAC;AAAA,EACpD;AACF;","names":[]}

package/dist/index.mjs ADDED Viewed

@@ -0,0 +1,136 @@
+// src/client.ts
+import { randomUUID } from "crypto";
+var DEFAULT_BASE_URL = "https://prooflayer.world999labs.com";
+var MAX_BACKOFF_MS = 4e3;
+function backoffMs(attempt) {
+  return Math.min(250 * Math.pow(2, attempt), MAX_BACKOFF_MS);
+}
+function sleep(ms) {
+  return new Promise((resolve) => setTimeout(resolve, ms));
+}
+var ProofLayerClient = class {
+  apiKey;
+  baseUrl;
+  maxRetries;
+  tenantId;
+  constructor(options) {
+    if (!options.apiKey) throw new Error("ProofLayerClient: apiKey is required");
+    this.apiKey = options.apiKey;
+    this.baseUrl = (options.baseUrl ?? DEFAULT_BASE_URL).replace(/\/$/, "");
+    this.maxRetries = options.maxRetries ?? 3;
+    this.tenantId = options.tenantId;
+  }
+  authHeaders() {
+    return {
+      "Content-Type": "application/json",
+      "X-Api-Key": this.apiKey
+    };
+  }
+  /**
+   * Internal fetch wrapper with exponential-backoff retry on transient errors.
+   */
+  async fetchWithRetry(path, init, attempt = 0) {
+    const url = `${this.baseUrl}${path}`;
+    let lastErr;
+    for (let i = 0; i <= this.maxRetries; i++) {
+      if (i > 0) await sleep(backoffMs(i - 1));
+      try {
+        const resp = await fetch(url, init);
+        if (resp.status >= 500 && i < this.maxRetries) {
+          lastErr = new Error(`HTTP ${resp.status}`);
+          continue;
+        }
+        return resp;
+      } catch (err) {
+        lastErr = err;
+        if (i >= this.maxRetries) break;
+      }
+    }
+    throw lastErr ?? new Error("Request failed after retries");
+  }
+  async request(path, init) {
+    const resp = await this.fetchWithRetry(path, {
+      ...init,
+      headers: { ...this.authHeaders(), ...init.headers ?? {} }
+    });
+    if (!resp.ok) {
+      const body = await resp.json().catch(() => ({}));
+      const msg = body?.message ?? body?.error ?? `HTTP ${resp.status}`;
+      throw Object.assign(new Error(`Proof Layer API error: ${msg}`), {
+        status: resp.status,
+        body
+      });
+    }
+    return resp.json();
+  }
+  /**
+   * Submit an action proposal for governance evaluation.
+   * The Guardian returns a verdict (EXECUTE | SHADOW | REVIEW | BLOCK).
+   */
+  async evaluate(options) {
+    const tenantId = this.tenantId;
+    const payload = {
+      schema_version: "1.0",
+      action_type: options.actionType,
+      resource_id: options.resourceId,
+      agent_id: options.agentId,
+      parameters: options.parameters ?? {},
+      idempotency_key: options.idempotencyKey ?? randomUUID(),
+      requested_at: options.requestedAt ?? (/* @__PURE__ */ new Date()).toISOString(),
+      guardian_timeout_policy: options.timeoutPolicy ?? "fail_closed"
+    };
+    if (tenantId) payload.tenant_id = tenantId;
+    return this.request("/v1/evaluate", {
+      method: "POST",
+      body: JSON.stringify(payload)
+    });
+  }
+  /**
+   * Retrieve a single receipt by ID.
+   */
+  async getReceipt(receiptId) {
+    return this.request(`/v1/receipts/${encodeURIComponent(receiptId)}`, {
+      method: "GET"
+    });
+  }
+  /**
+   * List receipts for the authenticated tenant.
+   */
+  async listReceipts(options = {}) {
+    const params = new URLSearchParams();
+    if (options.limit) params.set("limit", String(options.limit));
+    if (options.offset) params.set("offset", String(options.offset));
+    const qs = params.toString() ? `?${params}` : "";
+    return this.request(`/v1/receipts${qs}`, {
+      method: "GET"
+    });
+  }
+  /**
+   * Verify the cryptographic integrity of a receipt.
+   */
+  async verifyReceipt(receiptId) {
+    return this.request("/v1/receipts/verify", {
+      method: "POST",
+      body: JSON.stringify({ receipt_id: receiptId })
+    });
+  }
+  /**
+   * Verify the full audit chain (Merkle root integrity) for the tenant.
+   */
+  async verifyChain() {
+    return this.request("/v1/receipts/verify-chain", {
+      method: "POST",
+      body: JSON.stringify({})
+    });
+  }
+  /**
+   * Retrieve usage statistics for the current billing period.
+   */
+  async getUsage() {
+    return this.request("/v1/usage", { method: "GET" });
+  }
+};
+export {
+  ProofLayerClient
+};
+//# sourceMappingURL=index.mjs.map

package/dist/index.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/client.ts"],"sourcesContent":["import { randomUUID } from \"crypto\";\nimport type {\n EvaluateOptions,\n EvaluateResult,\n Receipt,\n ListReceiptsOptions,\n VerifyChainResult,\n ProofLayerClientOptions,\n} from \"./types\";\n\nconst DEFAULT_BASE_URL = \"https://prooflayer.world999labs.com\";\nconst MAX_BACKOFF_MS = 4_000;\n\n/**\n * Exponential backoff delay, doubling per attempt, capped at MAX_BACKOFF_MS.\n * attempt 0 → 250ms, 1 → 500ms, 2 → 1000ms, 3 → 2000ms, 4+ → 4000ms.\n */\nfunction backoffMs(attempt: number): number {\n return Math.min(250 * Math.pow(2, attempt), MAX_BACKOFF_MS);\n}\n\nfunction sleep(ms: number): Promise<void> {\n return new Promise((resolve) => setTimeout(resolve, ms));\n}\n\nexport class ProofLayerClient {\n private readonly apiKey: string;\n private readonly baseUrl: string;\n private readonly maxRetries: number;\n private readonly tenantId: string | undefined;\n\n constructor(options: ProofLayerClientOptions) {\n if (!options.apiKey) throw new Error(\"ProofLayerClient: apiKey is required\");\n this.apiKey = options.apiKey;\n this.baseUrl = (options.baseUrl ?? DEFAULT_BASE_URL).replace(/\\/$/, \"\");\n this.maxRetries = options.maxRetries ?? 3;\n this.tenantId = options.tenantId;\n }\n\n private authHeaders(): Record<string, string> {\n return {\n \"Content-Type\": \"application/json\",\n \"X-Api-Key\": this.apiKey,\n };\n }\n\n /**\n * Internal fetch wrapper with exponential-backoff retry on transient errors.\n */\n private async fetchWithRetry(\n path: string,\n init: RequestInit,\n attempt = 0,\n ): Promise<Response> {\n const url = `${this.baseUrl}${path}`;\n let lastErr: unknown;\n for (let i = 0; i <= this.maxRetries; i++) {\n if (i > 0) await sleep(backoffMs(i - 1));\n try {\n const resp = await fetch(url, init);\n // Retry on 5xx server errors only\n if (resp.status >= 500 && i < this.maxRetries) {\n lastErr = new Error(`HTTP ${resp.status}`);\n continue;\n }\n return resp;\n } catch (err) {\n lastErr = err;\n if (i >= this.maxRetries) break;\n }\n }\n throw lastErr ?? new Error(\"Request failed after retries\");\n }\n\n private async request<T>(path: string, init: RequestInit): Promise<T> {\n const resp = await this.fetchWithRetry(path, {\n ...init,\n headers: { ...this.authHeaders(), ...(init.headers as Record<string, string> ?? {}) },\n });\n if (!resp.ok) {\n const body = await resp.json().catch(() => ({}));\n const msg = (body as any)?.message ?? (body as any)?.error ?? `HTTP ${resp.status}`;\n throw Object.assign(new Error(`Proof Layer API error: ${msg}`), {\n status: resp.status,\n body,\n });\n }\n return resp.json() as Promise<T>;\n }\n\n /**\n * Submit an action proposal for governance evaluation.\n * The Guardian returns a verdict (EXECUTE | SHADOW | REVIEW | BLOCK).\n */\n async evaluate(options: EvaluateOptions): Promise<EvaluateResult> {\n const tenantId = this.tenantId;\n const payload: Record<string, unknown> = {\n schema_version: \"1.0\",\n action_type: options.actionType,\n resource_id: options.resourceId,\n agent_id: options.agentId,\n parameters: options.parameters ?? {},\n idempotency_key: options.idempotencyKey ?? randomUUID(),\n requested_at: options.requestedAt ?? new Date().toISOString(),\n guardian_timeout_policy: options.timeoutPolicy ?? \"fail_closed\",\n };\n if (tenantId) payload.tenant_id = tenantId;\n return this.request<EvaluateResult>(\"/v1/evaluate\", {\n method: \"POST\",\n body: JSON.stringify(payload),\n });\n }\n\n /**\n * Retrieve a single receipt by ID.\n */\n async getReceipt(receiptId: string): Promise<Receipt> {\n return this.request<Receipt>(`/v1/receipts/${encodeURIComponent(receiptId)}`, {\n method: \"GET\",\n });\n }\n\n /**\n * List receipts for the authenticated tenant.\n */\n async listReceipts(options: ListReceiptsOptions = {}): Promise<{ receipts: Receipt[]; count: number }> {\n const params = new URLSearchParams();\n if (options.limit) params.set(\"limit\", String(options.limit));\n if (options.offset) params.set(\"offset\", String(options.offset));\n const qs = params.toString() ? `?${params}` : \"\";\n return this.request<{ receipts: Receipt[]; count: number }>(`/v1/receipts${qs}`, {\n method: \"GET\",\n });\n }\n\n /**\n * Verify the cryptographic integrity of a receipt.\n */\n async verifyReceipt(receiptId: string): Promise<{ valid: boolean; receipt: Receipt }> {\n return this.request<{ valid: boolean; receipt: Receipt }>(\"/v1/receipts/verify\", {\n method: \"POST\",\n body: JSON.stringify({ receipt_id: receiptId }),\n });\n }\n\n /**\n * Verify the full audit chain (Merkle root integrity) for the tenant.\n */\n async verifyChain(): Promise<VerifyChainResult> {\n return this.request<VerifyChainResult>(\"/v1/receipts/verify-chain\", {\n method: \"POST\",\n body: JSON.stringify({}),\n });\n }\n\n /**\n * Retrieve usage statistics for the current billing period.\n */\n async getUsage(): Promise<{\n tenant_id: string;\n tier: string;\n receipts_this_month: number;\n receipts_included: number;\n percent_used: number;\n }> {\n return this.request(\"/v1/usage\", { method: \"GET\" });\n }\n}\n"],"mappings":";AAAA,SAAS,kBAAkB;AAU3B,IAAM,mBAAmB;AACzB,IAAM,iBAAiB;AAMvB,SAAS,UAAU,SAAyB;AAC1C,SAAO,KAAK,IAAI,MAAM,KAAK,IAAI,GAAG,OAAO,GAAG,cAAc;AAC5D;AAEA,SAAS,MAAM,IAA2B;AACxC,SAAO,IAAI,QAAQ,CAAC,YAAY,WAAW,SAAS,EAAE,CAAC;AACzD;AAEO,IAAM,mBAAN,MAAuB;AAAA,EACX;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EAEjB,YAAY,SAAkC;AAC5C,QAAI,CAAC,QAAQ,OAAQ,OAAM,IAAI,MAAM,sCAAsC;AAC3E,SAAK,SAAS,QAAQ;AACtB,SAAK,WAAW,QAAQ,WAAW,kBAAkB,QAAQ,OAAO,EAAE;AACtE,SAAK,aAAa,QAAQ,cAAc;AACxC,SAAK,WAAW,QAAQ;AAAA,EAC1B;AAAA,EAEQ,cAAsC;AAC5C,WAAO;AAAA,MACL,gBAAgB;AAAA,MAChB,aAAa,KAAK;AAAA,IACpB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,eACZ,MACA,MACA,UAAU,GACS;AACnB,UAAM,MAAM,GAAG,KAAK,OAAO,GAAG,IAAI;AAClC,QAAI;AACJ,aAAS,IAAI,GAAG,KAAK,KAAK,YAAY,KAAK;AACzC,UAAI,IAAI,EAAG,OAAM,MAAM,UAAU,IAAI,CAAC,CAAC;AACvC,UAAI;AACF,cAAM,OAAO,MAAM,MAAM,KAAK,IAAI;AAElC,YAAI,KAAK,UAAU,OAAO,IAAI,KAAK,YAAY;AAC7C,oBAAU,IAAI,MAAM,QAAQ,KAAK,MAAM,EAAE;AACzC;AAAA,QACF;AACA,eAAO;AAAA,MACT,SAAS,KAAK;AACZ,kBAAU;AACV,YAAI,KAAK,KAAK,WAAY;AAAA,MAC5B;AAAA,IACF;AACA,UAAM,WAAW,IAAI,MAAM,8BAA8B;AAAA,EAC3D;AAAA,EAEA,MAAc,QAAW,MAAc,MAA+B;AACpE,UAAM,OAAO,MAAM,KAAK,eAAe,MAAM;AAAA,MAC3C,GAAG;AAAA,MACH,SAAS,EAAE,GAAG,KAAK,YAAY,GAAG,GAAI,KAAK,WAAqC,CAAC,EAAG;AAAA,IACtF,CAAC;AACD,QAAI,CAAC,KAAK,IAAI;AACZ,YAAM,OAAO,MAAM,KAAK,KAAK,EAAE,MAAM,OAAO,CAAC,EAAE;AAC/C,YAAM,MAAO,MAAc,WAAY,MAAc,SAAS,QAAQ,KAAK,MAAM;AACjF,YAAM,OAAO,OAAO,IAAI,MAAM,0BAA0B,GAAG,EAAE,GAAG;AAAA,QAC9D,QAAQ,KAAK;AAAA,QACb;AAAA,MACF,CAAC;AAAA,IACH;AACA,WAAO,KAAK,KAAK;AAAA,EACnB;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SAAS,SAAmD;AAChE,UAAM,WAAW,KAAK;AACtB,UAAM,UAAmC;AAAA,MACvC,gBAAgB;AAAA,MAChB,aAAa,QAAQ;AAAA,MACrB,aAAa,QAAQ;AAAA,MACrB,UAAU,QAAQ;AAAA,MAClB,YAAY,QAAQ,cAAc,CAAC;AAAA,MACnC,iBAAiB,QAAQ,kBAAkB,WAAW;AAAA,MACtD,cAAc,QAAQ,gBAAe,oBAAI,KAAK,GAAE,YAAY;AAAA,MAC5D,yBAAyB,QAAQ,iBAAiB;AAAA,IACpD;AACA,QAAI,SAAU,SAAQ,YAAY;AAClC,WAAO,KAAK,QAAwB,gBAAgB;AAAA,MAClD,QAAQ;AAAA,MACR,MAAM,KAAK,UAAU,OAAO;AAAA,IAC9B,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAW,WAAqC;AACpD,WAAO,KAAK,QAAiB,gBAAgB,mBAAmB,SAAS,CAAC,IAAI;AAAA,MAC5E,QAAQ;AAAA,IACV,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,aAAa,UAA+B,CAAC,GAAoD;AACrG,UAAM,SAAS,IAAI,gBAAgB;AACnC,QAAI,QAAQ,MAAO,QAAO,IAAI,SAAS,OAAO,QAAQ,KAAK,CAAC;AAC5D,QAAI,QAAQ,OAAQ,QAAO,IAAI,UAAU,OAAO,QAAQ,MAAM,CAAC;AAC/D,UAAM,KAAK,OAAO,SAAS,IAAI,IAAI,MAAM,KAAK;AAC9C,WAAO,KAAK,QAAgD,eAAe,EAAE,IAAI;AAAA,MAC/E,QAAQ;AAAA,IACV,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,cAAc,WAAkE;AACpF,WAAO,KAAK,QAA8C,uBAAuB;AAAA,MAC/E,QAAQ;AAAA,MACR,MAAM,KAAK,UAAU,EAAE,YAAY,UAAU,CAAC;AAAA,IAChD,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,cAA0C;AAC9C,WAAO,KAAK,QAA2B,6BAA6B;AAAA,MAClE,QAAQ;AAAA,MACR,MAAM,KAAK,UAAU,CAAC,CAAC;AAAA,IACzB,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAMH;AACD,WAAO,KAAK,QAAQ,aAAa,EAAE,QAAQ,MAAM,CAAC;AAAA,EACpD;AACF;","names":[]}

package/package.json ADDED Viewed

@@ -0,0 +1,47 @@
+{
+  "name": "@proof-layer/sdk",
+  "version": "1.0.0",
+  "description": "Official Proof Layer Node.js SDK — submit AI agent action proposals for governance, retrieve Ed25519-signed receipts, and verify hash-chained audit trails. Drop-in for any Node service that needs cryptographic proof of agent decisions.",
+  "keywords": [
+    "proof-layer",
+    "prooflayer",
+    "world999labs",
+    "ai-governance",
+    "ai-safety",
+    "agent-governance",
+    "audit",
+    "receipts",
+    "ed25519",
+    "hash-chain",
+    "merkle"
+  ],
+  "license": "MIT",
+  "homepage": "https://prooflayer.world999labs.com",
+  "bugs": { "url": "https://github.com/World-999-Labs/proof-layer/issues" },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/World-999-Labs/proof-layer.git",
+    "directory": "packages/sdk"
+  },
+  "main": "./dist/index.js",
+  "module": "./dist/index.mjs",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.mjs",
+      "require": "./dist/index.js"
+    }
+  },
+  "files": ["dist", "README.md", "LICENSE"],
+  "scripts": {
+    "build": "tsup",
+    "dev": "tsup --watch",
+    "prepublishOnly": "npm run build"
+  },
+  "engines": { "node": ">=18" },
+  "devDependencies": {
+    "tsup": "^8.0.0",
+    "typescript": "^5.0.0"
+  }
+}